Alternatives and similar repositories for ioc-explorer

Users that are interested in ioc-explorer are comparing it to the libraries listed below

• baronpan / SysmonHunter
  An easy ATT&CK-based Sysmon hunting tool, showing in Blackhat USA 2019 Arsenal
  ☆202Updated 3 years ago
• We5ter / Flerken
  A Solution For Cross-Platform Obfuscated Commands Detection presented on CIS2019 China. 动静态Bash/CMD/PowerShell命令混淆检测框架 - CIS 2019大会
  ☆165Updated 6 years ago
• SpiderLabs / IOCs-IDPS
  This repository will hold PCAP IOC data related with known malware samples (owner: Bryant Smith)
  ☆107Updated 4 years ago
• fox-it / cobaltstrike-extraneous-space
  Historical list of {Cobalt Strike,NanoHTTPD} servers
  ☆121Updated 6 years ago
• tianyulab / ThreatDetectionRules
  威胁检测规则集
  ☆15Updated 6 years ago
• Cisco-Talos / Re2Pcap
  ☆55Updated last year
• Cherishao / APT-Sample
  Pull some Malware samples here for other security researchers/malware analyst's to analyze and play with.
  ☆173Updated last year
• pandaof / ATT-CK-and-Atomic-Red-Team
  ☆11Updated 3 months ago
• tstillz / webshell-scan
  Simple web shell scanner written in Golang.
  ☆90Updated 6 years ago
• shakenetwork / MalwareAnalysis
  精心制作的恶意软件分析工具和资源列表A curated list of awesome malware analysis tools and resources
  ☆42Updated 7 years ago
• threatrack / cti_report_collection
  Repository collecting and automagically processing public threat intelligence reports.
  ☆18Updated 5 years ago
• decalage2 / oledump-contrib
  The oledump-contrib repository contains plugins and enhancements for the oledump tool published by Didier Stevens.
  ☆54Updated 9 years ago
• yanlinlin82 / plcscan
  Automatically exported from code.google.com/p/plcscan
  ☆58Updated 10 years ago
• likekabin / CyberMonitor-APT_CyberCriminal_Campagin_Collections
  ☆33Updated 7 years ago
• tianyulab / Hunting_lateral_movement
  《横向移动攻击与检测技术》专栏文章
  ☆17Updated 6 years ago
• 360netlab / DGA
  Suspicious DGA from PDNS and Sandbox.
  ☆186Updated 3 years ago
• hardenedlinux / hardenedlinux-zeek-scripts
  ☆38Updated last year
• 360netlab / flint
  The python client of passivedns.cn
  ☆98Updated 6 years ago
• Elemental-attack / Elemental
  Elemental - An ATT&CK Threat Library
  ☆318Updated 2 years ago
• kirillwow / ids_bypass
  IDS Bypass tricks
  ☆122Updated 6 years ago
• michael-yip / APTMalwareNotes
  A repository of open source reports on different malware families used in targeted cyber intrusions ("APT").
  ☆52Updated 10 years ago
• brakmic / Sinkholes
  Malware Sinkhole List in various formats
  ☆102Updated 3 years ago
• Cymmetria / weblogic_honeypot
  WebLogic Honeypot is a low interaction honeypot to detect CVE-2017-10271 in the Oracle WebLogic Server component of Oracle Fusion Middlew…
  ☆32Updated 5 years ago
• Z-0ne / SCADA-Rules
  Snort rules
  ☆35Updated 6 years ago
• DarkenCode / yara-rules
  Repository of yara rules
  ☆48Updated 10 years ago
• nixawk / nmap_vscan
  nmap service and application version detection (without nmap installation)
  ☆115Updated 7 years ago
• tatsuiman / malware-traffic-analysis.net
  Download pcap files from http://www.malware-traffic-analysis.net/
  ☆79Updated 7 years ago
• NotSoSecure / icmp_tunnel_ex_filtrate
  Code snippet accompanying blog post
  ☆30Updated 9 years ago
• RF-CTI / SANS-summit
  ☆30Updated 2 years ago
• sapphirex00 / Threat-Hunting
  Personal compilation of APT malware from whitepaper releases, documents and own research
  ☆262Updated 6 years ago